bastion host


Also found in: Dictionary, Thesaurus, Medical, Financial, Wikipedia.

bastion host

bastion host

A computer system in a network that is fortified against illegal entry and attack, because it is exposed to the outside world (the Internet). Bastion hosts are used for services such as website hosting, mail, DNS lookups and FTP transfer and are located on the public side of a perimeter net (DMZ). The name comes from medieval fortresses built with bastions, which were projections out from the wall that enabled more men to gather behind in order to shoot their arrows. See firewall.


Bastion Hosts in a Firewall
In this "screened subnet" firewall architecture, several bastion hosts reside in their own perimeter net, which is protected by screening routers on both ends.
References in periodicals archive ?
Specific areas covered include building a bastion host, backing up and restoring a bastion host, setting up secure remote administration, and auditing, monitoring, and maintaining the perimeter network.
Perimeter security system components: perimeter router, firewall, bastion host -- Servers: syslog server, web and FTP servers -- IPSec concepts: IKE, IPSec, encryption, authentication, CA servers
The security checks contained in ESM for WebServers cover three major areas of Web server security vulnerabilities including Common Gateway Interface (CGI) programs, FTP utilities, and Bastion Host services.